Overview

overview

7

Static

static

3

287aa69f3f...18.exe

windows7-x64

7

287aa69f3f...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    287aa69f3f68552f2a10a427a39b82cc_JaffaCakes118

  • Size

    1.0MB

  • Sample

    241009-bxec7ayfkj

  • MD5

    287aa69f3f68552f2a10a427a39b82cc

  • SHA1

    2549ccd4c4b99f8a581f8258a41a0a0adf7e72ef

  • SHA256

    c2871a69ee28993988f901647a92798ca9f91e62d64f480379efeae4f4135a99

  • SHA512

    5b27b83c57e47015a504c5856e0e629b3450de44e82a899f712dade206fb22806106116d29508a90269b4a373d43e432c624d485a828e131ab210919386b3967

  • SSDEEP

    24576:tLigTbc/P/kabCMun9YTFZ0XhSLnJxcPuGspCUE7Ml1Ddo4:tLDTbYPFbCMmqYsn7cmGspbl/o4

Score
7/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      287aa69f3f68552f2a10a427a39b82cc_JaffaCakes118

    • Size

      1.0MB

    • MD5

      287aa69f3f68552f2a10a427a39b82cc

    • SHA1

      2549ccd4c4b99f8a581f8258a41a0a0adf7e72ef

    • SHA256

      c2871a69ee28993988f901647a92798ca9f91e62d64f480379efeae4f4135a99

    • SHA512

      5b27b83c57e47015a504c5856e0e629b3450de44e82a899f712dade206fb22806106116d29508a90269b4a373d43e432c624d485a828e131ab210919386b3967

    • SSDEEP

      24576:tLigTbc/P/kabCMun9YTFZ0XhSLnJxcPuGspCUE7Ml1Ddo4:tLDTbYPFbCMmqYsn7cmGspbl/o4

    Score
    7/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks